Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2d/25b6b5-28d7-4695-b4de-8bdf291d93d1/1/K1FH661cbDMUXEQvUxbHLM-8LSg.roa
File: K1FH661cbDMUXEQvUxbHLM-8LSg.roa (raw, json)
Hash identifier: pDrBqrfCiUGiBMy70tnHAb04/PlxyqtzkG2rN23fsHs=
Subject key identifier: 2B:51:47:EB:AD:5C:6C:33:14:5C:44:2F:53:16:C7:2C:CF:BC:2D:28
Certificate issuer: /CN=b1ed6676a857590b6365b76c5580d70fca8dbaa6
Certificate serial: 018CC72772B849E9C453435774FFA85337A1
Authority key identifier: B1:ED:66:76:A8:57:59:0B:63:65:B7:6C:55:80:D7:0F:CA:8D:BA:A6
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/se1mdqhXWQtjZbdsVYDXD8qNuqY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2d/25b6b5-28d7-4695-b4de-8bdf291d93d1/1/K1FH661cbDMUXEQvUxbHLM-8LSg.roa
Signing time: Mon 01 Jan 2024 22:31:40 +0000
ROA not before: Mon 01 Jan 2024 22:31:40 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 198932
IP address blocks: 193.242.135.0/24 maxlen: 24
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2d/25b6b5-28d7-4695-b4de-8bdf291d93d1/1/se1mdqhXWQtjZbdsVYDXD8qNuqY.crl
rsync://rpki.ripe.net/repository/DEFAULT/2d/25b6b5-28d7-4695-b4de-8bdf291d93d1/1/se1mdqhXWQtjZbdsVYDXD8qNuqY.mft
rsync://rpki.ripe.net/repository/DEFAULT/se1mdqhXWQtjZbdsVYDXD8qNuqY.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 03 Jun 2024 22:00:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c7:27:72:b8:49:e9:c4:53:43:57:74:ff:a8:53:37:a1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b1ed6676a857590b6365b76c5580d70fca8dbaa6
Validity
Not Before: Jan 1 22:31:40 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=2b5147ebad5c6c33145c442f5316c72ccfbc2d28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:97:c7:56:b7:0c:cd:35:c8:03:05:f5:3e:96:c2:
b6:0f:e3:e2:4b:7f:b9:93:42:22:5e:ef:9a:82:b5:
9d:b7:8e:23:13:76:14:6a:f4:8c:13:d3:1d:0b:aa:
c4:24:95:19:a4:37:2e:ec:67:de:c1:a9:97:b1:8d:
2c:bc:8b:b4:62:c3:66:7d:e2:52:4d:35:4f:d5:fe:
49:c1:95:64:e3:61:5b:05:1e:00:12:87:ff:99:f3:
7f:2b:1f:0d:c9:99:6f:a4:5a:86:eb:5e:4f:df:52:
07:43:2d:33:e1:42:7e:a5:78:8f:64:5b:f3:16:83:
e2:e4:4b:b7:e9:41:d4:ee:44:7f:93:b6:1c:9c:d0:
5a:30:71:a0:97:1d:f3:0a:f9:97:0e:6e:d4:68:2b:
a0:c3:c4:0a:8f:c6:d7:d4:df:20:39:aa:21:03:ec:
20:3f:41:65:38:ab:2e:03:79:19:07:1c:69:57:13:
ea:18:5e:e2:87:d3:30:88:b9:9b:77:b2:1a:a9:d7:
64:3a:8c:84:73:72:b2:31:8c:aa:e0:83:77:85:a0:
3e:24:af:b2:d0:03:2a:bb:da:d7:06:2a:29:8c:30:
34:b8:93:bd:3e:3c:29:f9:57:79:4d:8d:3e:75:be:
8f:08:12:be:9a:aa:cd:87:e7:f3:eb:25:53:15:5a:
0d:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2B:51:47:EB:AD:5C:6C:33:14:5C:44:2F:53:16:C7:2C:CF:BC:2D:28
X509v3 Authority Key Identifier:
keyid:B1:ED:66:76:A8:57:59:0B:63:65:B7:6C:55:80:D7:0F:CA:8D:BA:A6
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/se1mdqhXWQtjZbdsVYDXD8qNuqY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/25b6b5-28d7-4695-b4de-8bdf291d93d1/1/K1FH661cbDMUXEQvUxbHLM-8LSg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/2d/25b6b5-28d7-4695-b4de-8bdf291d93d1/1/se1mdqhXWQtjZbdsVYDXD8qNuqY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.242.135.0/24
Signature Algorithm: sha256WithRSAEncryption
c4:da:56:ba:d5:80:d9:46:41:48:fc:62:f7:ab:96:6a:81:2a:
d5:e8:11:e1:cf:95:ec:0d:25:d1:aa:55:a0:63:af:58:80:68:
de:f5:2e:d9:62:6f:15:30:54:53:0d:bb:14:1b:5d:1d:da:91:
67:f2:11:f7:d1:80:38:03:23:5f:13:b5:7a:26:e6:bf:53:f8:
29:92:6a:c2:b9:72:24:3f:ee:11:f2:c0:3c:53:8b:20:6d:21:
ff:46:2b:05:3d:e8:18:7d:e8:31:f1:1c:a7:29:a3:d0:4b:4d:
ba:03:78:f4:fe:b9:2e:4c:20:5a:44:1b:c2:f7:8e:79:f0:8f:
73:07:12:73:5d:7a:17:5c:87:08:b5:4e:de:bc:e2:f5:d2:11:
32:fe:b2:c7:03:cd:4a:ca:d3:a2:b4:25:e7:f7:c5:75:61:b6:
b9:85:c1:94:c6:54:20:90:e4:65:32:8c:07:bf:c7:74:8e:9c:
4c:b7:5f:de:c9:cf:41:ff:66:48:58:04:1a:c6:94:ed:00:ae:
c1:4a:ea:d4:1a:71:81:d7:50:4c:bd:1d:a6:92:2e:ae:f1:7a:
41:c7:b4:63:ae:11:fb:29:4e:76:6b:ff:df:13:02:7a:dc:73:
b6:ef:9d:d2:b4:36:d6:8a:72:dd:20:fc:2f:91:02:e4:00:0a:
a6:73:2f:58
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 3 06:55:58 2024 by rpki-client on console-fra.rpki-client.org